What Is Duo?

Duo is a two-factor authentication solution that helps organizations boost security by verifying user identity, establishing device trust, and providing a secure connection to company networks and applications.

How can Duo help my organization?

Duo multi-factor authentication protects your organization's data at every access attempt, from any device, and from any location. It verifies user trust, establishes device trust, and provides secure access to company apps and networks—from wherever users are logging in. 

How does Duo work?

When a user logs in—whether from their home office, the corporate office, or another remote location—Duo uses two-factor authentication and a zero-trust approach to security. Before granting access, Duo will: 

  • Verify user trust. Duo uses a second form of validation, such as a smartphone, to verify that a user is who they say they are before granting them access.
  • Establish device trust. Once access is granted, Duo enables your organization to see every device that is connected to your network and applications and easily monitor device health and compliance.
  • Enforce adaptive policies. You can set access levels based on role, device, location, and other relevant factors.
  • Grant secure access to users. Get even more secure access, beyond what a VPN can provide, and verify the identities of users from wherever they choose to log in.
  • Grant secure access to apps. Provide users with single sign-on (SSO) for a consistently easy login experience. A user-friendly dashboard provides streamlined access to company apps. 

Other features and benefits

Here are some of the Duo authentication features that can provide a simple and efficient boost to your organization's security.

Passwordless authentication

Passwordless authentication is the term used to describe a group of identity verification methods that don't rely on passwords. Examples of passwordless authentication include biometrics, security keys, and specialized mobile apps.

Explore Duo passwordless authentication


Two-factor authentication 

Two-factor authentication adds a layer of security to online accounts using a second device such as a smartphone. By sending a push notification to that device, two-factor authentication prevents another person from accessing an account—even if the password has been compromised.

Explore Duo's two-factor authentication


Zero trust

Zero-trust security can be summarized as "never trust, always verify." Traditional security strategies operate under the assumption that any user or device within a corporate network can be trusted. With so many users now logging in remotely, this approach is no longer viable. Data and applications aren't located behind the network perimeter and a firewall, and users connect directly to company networks with personal devices.

Explore Duo's zero-trust approach